-
Notifications
You must be signed in to change notification settings - Fork 2
55 lines (51 loc) · 1.99 KB
/
build.yml
File metadata and controls
55 lines (51 loc) · 1.99 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
name: build
on:
pull_request:
workflow_dispatch:
push:
branches:
- main
- stable/**
permissions:
contents: read
jobs:
image:
name: ${{ matrix.name }}
runs-on: ubuntu-latest
strategy:
fail-fast: false
matrix:
include:
- name: ubuntu
image-name: python-base-ubuntu
from: ubuntu:24.04@sha256:c4a8d5503dfb2a3eb8ab5f807da5bc69a85730fb49b5cfca2330194ebcc41c7b
- name: ubuntu-cloud-archive
image-name: python-base-ubuntu-cloud-archive
from: ghcr.io/vexxhost/ubuntu-cloud-archive:main@sha256:6decaee63740fbaeb7129c21e62bdbc58de217502e69a3957f8affc195beb31a
- name: ubuntu-cloud-archive-legacy
image-name: python-base
from: ghcr.io/vexxhost/ubuntu-cloud-archive:main@sha256:6decaee63740fbaeb7129c21e62bdbc58de217502e69a3957f8affc195beb31a
- name: debian
image-name: python-base-debian
from: debian:trixie@sha256:e2d08da6f42ef4b09b165d55528a12727aeed8240dc9edf888e3ec07e10ef9da
- name: rockylinux
image-name: python-base-rockylinux
from: rockylinux/rockylinux:10@sha256:f4da504c18e7aced902f4f728cde787cd9d9b817bc639fe171026d18364dca6c
- name: almalinux
image-name: python-base-almalinux
from: almalinux:10@sha256:f683953b33aa4ea37b60e7dee002f29969e2d578b0037d2c7e1563447040995f
permissions:
contents: read
id-token: write
packages: write
pull-requests: write
steps:
- name: Harden the runner (Audit all outbound calls)
uses: step-security/harden-runner@a5ad31d6a139d249332a2605b85202e8c0b78450 # v2.19.1
with:
egress-policy: audit
- uses: vexxhost/docker-atmosphere/.github/actions/build-image@a1ad25c00b6bbf44621748b3a9ed664c6b6cf929 # main
with:
image-name: ${{ matrix.image-name }}
build-args: FROM=${{ matrix.from }}
push: ${{ github.event_name != 'pull_request' }}